Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/7a683b-fa78-4112-b6b6-155fb3fe287e/1/qhmAqFJvPejlAnh1Zpv7pgJy_-Q.roa
File: qhmAqFJvPejlAnh1Zpv7pgJy_-Q.roa (raw, json)
Hash identifier: zL3FbZqfmHi6sKP7kiFLifCZXZtPDlt9yLJgEKfijrs=
Subject key identifier: AA:19:80:A8:52:6F:3D:E8:E5:02:78:75:66:9B:FB:A6:02:72:FF:E4
Certificate issuer: /CN=cec3b347a216bc437b0bd4cf0bc8cda65e8c2d3b
Certificate serial: 18A53E4D
Authority key identifier: CE:C3:B3:47:A2:16:BC:43:7B:0B:D4:CF:0B:C8:CD:A6:5E:8C:2D:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsOzR6IWvEN7C9TPC8jNpl6MLTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/7a683b-fa78-4112-b6b6-155fb3fe287e/1/qhmAqFJvPejlAnh1Zpv7pgJy_-Q.roa
Signing time: Sat 01 Jan 2022 07:59:01 +0000
ROA not before: Sat 01 Jan 2022 07:59:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41963
IP address blocks: 91.102.184.0/24 maxlen: 24
91.102.185.0/24 maxlen: 24
91.102.184.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 413482573 (0x18a53e4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec3b347a216bc437b0bd4cf0bc8cda65e8c2d3b
Validity
Not Before: Jan 1 07:59:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa1980a8526f3de8e5027875669bfba60272ffe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3c:19:5e:a9:c3:e3:c4:91:18:16:e0:b9:75:
d6:6a:70:29:12:f4:f9:2e:9e:78:e7:2d:98:d6:54:
12:bf:49:63:b0:73:84:59:11:36:ad:10:c7:65:24:
c1:98:fd:45:bb:16:6c:0e:1e:6c:49:a2:18:da:d5:
40:18:b6:b9:5e:f5:54:f9:15:e1:21:03:fb:5f:a3:
a0:c1:dc:48:76:fc:89:ae:b6:e0:4b:7d:4a:0d:34:
e9:88:cc:bc:48:3e:66:bc:94:38:36:17:fd:23:a9:
ed:aa:8b:a2:bf:2f:5f:a3:ba:9f:bf:53:5e:f9:0f:
0c:9a:cb:bc:01:83:49:13:ee:91:b7:fd:14:50:33:
32:25:3a:98:cd:3d:4f:f1:3f:21:41:0a:34:eb:c6:
f0:16:c0:eb:82:10:ab:7e:89:ab:df:5a:bd:46:75:
51:65:75:9a:47:4b:54:43:6f:ab:ff:12:06:2e:48:
57:ed:7e:3f:ee:ee:11:57:9c:78:7e:fa:e0:1f:48:
65:da:b2:98:34:dd:44:2f:c4:fb:b7:6e:03:ae:0e:
1a:69:87:6e:ac:75:cd:66:ca:2d:5d:43:1a:52:02:
29:1f:2b:3d:93:fc:fa:56:d2:3c:80:15:93:6e:86:
e8:cd:7f:b9:d5:c5:31:cf:93:b2:3a:d1:0b:00:60:
6e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:19:80:A8:52:6F:3D:E8:E5:02:78:75:66:9B:FB:A6:02:72:FF:E4
X509v3 Authority Key Identifier:
keyid:CE:C3:B3:47:A2:16:BC:43:7B:0B:D4:CF:0B:C8:CD:A6:5E:8C:2D:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsOzR6IWvEN7C9TPC8jNpl6MLTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/7a683b-fa78-4112-b6b6-155fb3fe287e/1/qhmAqFJvPejlAnh1Zpv7pgJy_-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/7a683b-fa78-4112-b6b6-155fb3fe287e/1/zsOzR6IWvEN7C9TPC8jNpl6MLTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.184.0/21
Signature Algorithm: sha256WithRSAEncryption
8f:bf:76:c9:66:3d:42:d3:ab:f8:e4:a0:1e:1c:49:1e:12:9e:
60:ba:28:fb:80:79:33:89:ad:f1:84:c7:69:d7:f5:a6:97:06:
95:93:0c:ba:85:c7:1a:f6:28:c1:5d:b2:d8:14:2a:d1:1e:b6:
ac:51:dc:35:01:90:b1:f9:4b:4f:31:ac:ae:e0:ca:d4:9c:e7:
85:2e:79:74:b8:47:be:9a:00:9b:c0:83:9b:63:ec:80:a8:7c:
8a:eb:d7:c2:74:56:9b:98:c9:c8:0b:34:7c:1a:f8:6a:67:a0:
f2:ec:aa:81:01:cf:a2:f8:a6:39:b9:81:76:20:c3:23:c0:3b:
5c:95:09:a7:07:38:1e:60:4c:47:5a:a0:95:d5:00:29:c9:a7:
34:08:db:79:81:7d:0b:59:f9:cc:ec:26:fa:e3:66:cb:fe:57:
49:ec:27:23:88:82:22:4f:4a:eb:79:87:30:30:2b:ca:d1:c2:
1f:a5:60:b0:22:d3:4a:5f:77:6c:17:27:f7:9d:6a:7b:a2:59:
ef:2b:22:e9:ea:7b:ac:15:38:29:a6:0c:65:4c:5c:2c:b4:1d:
a3:b0:ef:70:b3:25:d6:c0:a6:c6:7d:32:43:5f:f3:1d:b7:5b:
b1:f6:55:9d:12:54:13:b7:3a:26:66:ce:b6:42:24:2e:1f:82:
4e:9d:f6:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:31 2024 by rpki-client on console-fra.rpki-client.org